Security Onion: Installed and Now What?
- Chris Mohan
- Thursday, July 11th, 7:15pm - 8:15pm
Security Onion is one the easiest and most effective way to deploy a free Network Security Monitoring (NSM) solution. Download it from SourceForge.net, boot the ISO image, follow the super quick setup guide, then Security Onion is up and running. See, it's easy. But what do you do after that?
We'll go through the steps to make sure everything is tested, alerting, and working as expected before you run into a real attack. By going through these steps now, you'll avoid that steep learning curve of figuring out how to do real incident response with Security Onion. Throw in a couple of today's current attacks, just to see what they look like, and you'll be ready to go out and build out your own working, pre-tested NSM environments.
Those of you that have never heard of Security Onion or NSM, go download it immediately from http://sourceforge.net/projects/security-onion/files/ then read all about it at http://securityonion.blogspot.com/
The following bonus sessions are open to all paid attendees at no additional cost. There are many different types of events that fall into these categories:
- SANS@Night: Evening presentations given after day courses have ended. This category includes Keynotes.
Wednesday, July 10
|Pen Testing the Smart Grid||Justin Searle||Wednesday, July 10th, 5:30pm - 7:15pm||SANS@Night|
Thursday, July 11
|Security Onion: Installed and Now What?||Chris Mohan||Thursday, July 11th, 7:15pm - 8:15pm||SANS@Night|